white at alioth.debian.org
2008-May-17 07:05 UTC
[Secure-testing-commits] r8823 - data/CVE
Author: white Date: 2008-05-17 07:05:49 +0000 (Sat, 17 May 2008) New Revision: 8823 Modified: data/CVE/list Log: Document uudeview issue in tracker , see old CVE-2004-2265 Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-05-16 15:45:12 UTC (rev 8822) +++ data/CVE/list 2008-05-17 07:05:49 UTC (rev 8823) @@ -1,5 +1,8 @@ CVE-2008-2276 [Cross-site request forgery (CSRF) vulnerability in Mantis] - mantis <unfixed> (bug #481504) +CVE-2008-2266 [UUDeview allows symlink attacks] + - uudeview <unfixed> (bug #480972) + NOTE: See CVE-2004-2265, where the problem occured as well CVE-2008-XXXX [apache2 mod_ssl DoS (memory leak)] - apache2 2.2.8-4 [etch] - apache2 <not-affected> (only a problem with openssl 0.9.8f or later)